Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0b46b7-5d23-4692-b39a-6fbce788318d/1/tOp6ivUxKlf9-lYFIt-YpBwSPO0.roa
File: tOp6ivUxKlf9-lYFIt-YpBwSPO0.roa (raw, json)
Hash identifier: 8QGoOr+b2diffzChVnCz/+FnqAQi3+Dts1wqfR8roAw=
Subject key identifier: B4:EA:7A:8A:F5:31:2A:57:FD:FA:56:05:22:DF:98:A4:1C:12:3C:ED
Certificate issuer: /CN=26d0b2a2954b5e757164444d42bbe8a14ad9b69e
Certificate serial: 01852A544D8C8FCF236653E0F2904E4D88B5
Authority key identifier: 26:D0:B2:A2:95:4B:5E:75:71:64:44:4D:42:BB:E8:A1:4A:D9:B6:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JtCyopVLXnVxZERNQrvooUrZtp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0b46b7-5d23-4692-b39a-6fbce788318d/1/tOp6ivUxKlf9-lYFIt-YpBwSPO0.roa
Signing time: Mon 19 Dec 2022 12:20:45 +0000
ROA not before: Mon 19 Dec 2022 12:20:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204704
IP address blocks: 45.84.66.0/24 maxlen: 24
45.84.65.0/24 maxlen: 24
45.84.67.0/24 maxlen: 24
2a0e:9880::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:54:4d:8c:8f:cf:23:66:53:e0:f2:90:4e:4d:88:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26d0b2a2954b5e757164444d42bbe8a14ad9b69e
Validity
Not Before: Dec 19 12:20:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4ea7a8af5312a57fdfa560522df98a41c123ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:11:3c:28:9a:0b:e0:1a:3c:2f:39:7d:ee:d5:
15:a6:42:79:ec:e6:ea:cc:5e:91:6e:2f:e9:93:10:
03:23:1b:0a:dc:e7:64:2c:74:31:6d:11:ae:50:51:
39:69:6a:17:04:78:6c:56:23:40:f2:35:e3:59:c1:
5e:2b:8f:3d:63:71:a1:f4:f7:ff:5e:dd:d6:ee:91:
c0:57:82:69:9a:38:f3:a1:0b:ac:d3:86:c4:03:76:
9d:02:91:ed:e5:0f:69:9e:e5:0e:e0:49:2e:c6:5f:
58:59:36:5a:29:94:f9:ec:6b:c1:4a:0d:23:2f:42:
48:76:db:b1:e1:31:3e:ba:0a:f0:69:0f:7b:76:2b:
91:d2:ac:50:88:18:97:4f:37:c8:76:74:90:0e:de:
cd:22:56:11:e4:6b:4e:21:33:cb:ce:00:6e:83:95:
10:2a:2d:42:e8:0c:10:d5:63:e2:fb:2d:28:36:ca:
68:e5:dd:92:76:0a:62:65:3e:2b:86:ec:24:72:97:
f3:90:b8:c3:18:3b:bf:e6:52:d7:b4:ab:4a:c5:29:
77:fc:d5:63:59:e7:ee:e5:8a:17:a1:aa:4d:47:e2:
6f:25:93:33:69:d1:0f:87:a9:b3:1e:a5:9a:1c:60:
c6:fe:b7:cd:b0:20:28:ac:e6:89:28:bc:a7:6a:bf:
c6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:EA:7A:8A:F5:31:2A:57:FD:FA:56:05:22:DF:98:A4:1C:12:3C:ED
X509v3 Authority Key Identifier:
keyid:26:D0:B2:A2:95:4B:5E:75:71:64:44:4D:42:BB:E8:A1:4A:D9:B6:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JtCyopVLXnVxZERNQrvooUrZtp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0b46b7-5d23-4692-b39a-6fbce788318d/1/tOp6ivUxKlf9-lYFIt-YpBwSPO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0b46b7-5d23-4692-b39a-6fbce788318d/1/JtCyopVLXnVxZERNQrvooUrZtp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.65.0-45.84.67.255
IPv6:
2a0e:9880::/29
Signature Algorithm: sha256WithRSAEncryption
3e:89:ec:c2:26:fd:24:dc:10:e5:f2:c0:06:dd:31:92:0e:29:
35:b5:a2:bf:1e:ee:b7:57:a9:61:10:71:8d:6d:84:d2:97:a8:
d8:15:ee:46:c6:93:25:f2:f9:ea:c9:a0:cb:73:24:6c:f1:f8:
e1:b4:bc:2e:06:55:a7:31:d1:5a:eb:61:84:21:68:e0:78:3b:
ea:61:93:42:b8:5d:e6:4c:09:ac:42:7c:72:b0:29:e7:9f:a8:
a4:97:b2:5b:45:47:b3:e2:84:ea:5c:47:2f:c1:5e:c8:5e:73:
82:59:8d:ea:88:08:f2:61:c8:7a:19:08:af:79:a2:31:80:c3:
ae:3b:8d:f5:a2:ed:88:29:a6:c6:44:ca:58:e1:0d:1a:c1:9d:
ad:f9:c9:20:b6:27:23:b8:2e:fd:d8:64:46:31:a7:db:4e:0c:
d3:56:d9:80:35:8f:6f:4e:16:a9:1d:24:89:68:4a:80:1e:6f:
2f:86:c3:b5:2a:7e:a8:14:d3:ab:04:6a:4d:1d:03:84:df:23:
b3:e8:df:76:53:cd:6c:0f:eb:70:4f:ed:58:3b:f8:c8:99:f1:
70:71:40:9c:a1:d3:f3:8a:1e:97:f6:96:cc:8f:64:c9:33:51:
74:fe:c3:a1:38:95:b0:e5:40:18:1a:dc:23:18:12:37:0e:26:
0b:02:5c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:42 2024 by rpki-client on console-ams.rpki-client.org